Skip to content

Instantly share code, notes, and snippets.

@unicodeveloper

unicodeveloper/token.js

Created September 12, 2016 16:09
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save unicodeveloper/46d0eadea73fe448e678693bbc170b3b to your computer and use it in GitHub Desktop.
Save unicodeveloper/46d0eadea73fe448e678693bbc170b3b to your computer and use it in GitHub Desktop.
Download ZIP
Cloudinary Blog Post - Part 1
Raw
token.js
var jwt = require('jwt-simple'),
secrets = require('./secrets'),
moment = require('moment');
/*
|--------------------------------------------------------------------------
| Generate JSON Web Token
|--------------------------------------------------------------------------
*/
function createJWT(user) {
var payload = {
sub: user._id,
iat: moment().unix(),
exp: moment().add(14, 'days').unix()
};
return jwt.encode(payload, secrets.TOKEN_SECRET);
}
/*
|--------------------------------------------------------------------------
| Login Required Middleware
|--------------------------------------------------------------------------
*/
function ensureAuthenticated(req, res, next) {
if (!req.header('Authorization')) {
return res.status(401).send({ message: 'Please make sure your request has an Authorization header' });
}
var token = req.header('Authorization').split(' ')[1],
payload = null;
try {
payload = jwt.decode(token, secrets.TOKEN_SECRET);
}
catch (err) {
return res.status(401).send({ message: err.message });
}
if (payload.exp <= moment().unix()) {
return res.status(401).json({ message: 'Token has expired' });
}
req.user = payload.sub;
next();
}
module.exports = {
createJWT: createJWT,
ensureAuthenticated: ensureAuthenticated
};
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment